Injection: Joomla MarvikShop ShoppingCart 3.4 - Sql Injection¶

Identifier: joomla_marvikshop_sqli

Scanner(s) Support¶

Description¶

Joomla MarvikShop ShoppingCart 3.4 is vulnerable to SQL injection which is a code injection technique that might destroy your database. SQL injection is one of the most common web hacking techniques. SQL injection is the placement of malicious code in SQL statements, via web page input.

Reference:

• https://vulners.com/zdt/1337DAY-ID-38020
• https://cxsecurity.com/issue/WLB-2022100015
• https://extensions.joomla.org/

Configuration¶

Example¶

Example configuration:

---
security_tests:
  joomla_marvikshop_sqli:
    assets_allowed:
    - REST
    - GRAPHQL
    - WEBAPP
    skip: false

Reference¶

assets_allowed¶

Type : List[AssetType]*

List of assets that this check will cover.

skip¶

Type : boolean

Skip the test if true.